Tag: credential-theft

Attack reports, vulnerabilities, indicators and intrusion sets linked to credential-theft.

Attack reports (249)

• ClickFix Campaign Generated Via AI Delivers SmartRAT · Published 17/06/2026 20:20 · Modified 17/06/2026 20:25
• Attackers Weaponize Microsoft Teams Relays to Stay Hidden · Published 16/06/2026 16:44 · Modified 16/06/2026 17:49
• Potemkin Loader & RMMProject The Anatomy of a ClickFix Attack · Published 16/06/2026 16:27 · Modified 16/06/2026 17:19
• Gamers beware: malicious wallpapers on Steam found stealing accounts · Published 16/06/2026 11:50 · Modified 16/06/2026 11:18
• Defending the Digital Pitch: World Cup 2026 Cyber Threats · Published 11/06/2026 23:09 · Modified 15/06/2026 19:16
• UNC1151/Ghostwriter phishing campaign targeting Gmail accounts · Published 12/06/2026 16:57 · Modified 15/06/2026 18:46
• The Devil, Eight Million Emails, and a Whole Lot of Milk | … · Published 15/06/2026 16:53 · Modified 15/06/2026 17:15
• SilabRAT, What's Your Power? · Published 10/06/2026 13:58 · Modified 10/06/2026 14:01
• Old WinRAR Flaw Fuels Attacks on Ukraine: How Unmanaged Software Keeps the … · Published 08/06/2026 12:30 · Modified 09/06/2026 09:00
• Don't Fear the Repo: UNK_DeadDrop Phishing Campaign Targets Developers to Steal Cryptocurrency · Published 08/06/2026 10:05 · Modified 09/06/2026 09:00
• AI brands as bait: How threat actors are using the AI hype … · Published 08/06/2026 19:36 · Modified 09/06/2026 08:57
• Mini Shai-Hulud, Miasma, and Hades Worms Target Bioinformatics and MCP Developers via … · Published 08/06/2026 21:36 · Modified 09/06/2026 08:57
• Miasma Worm Campaign Spreads with New PyPI Wave · Published 07/06/2026 11:21 · Modified 08/06/2026 09:23
• Argamal: Malware hidden in hentai games · Published 04/06/2026 09:19 · Modified 04/06/2026 09:39
• Malicious npm packages abuse dependency confusion to profile developer environments · Published 30/05/2026 06:07 · Modified 02/06/2026 09:59
• From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5 and … · Published 22/05/2026 17:38 · Modified 25/05/2026 10:51
• One Man, One AI, One Fake Persona: Inside the 5-Year Influence and … · Published 21/05/2026 23:03 · Modified 22/05/2026 06:42
• PureLogs: Delivery via PawsRunner Steganography · Published 21/05/2026 15:39 · Modified 21/05/2026 17:12
• The Worm That Keeps on Digging: Latest Wave · Published 19/05/2026 12:45 · Modified 21/05/2026 17:12
• SEO poisoning campaign leverages Gemini and Claude Code impersonation to deliver infostealer · Published 21/05/2026 13:19 · Modified 21/05/2026 16:50
• Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft · Published 21/05/2026 00:36 · Modified 21/05/2026 16:49
• Inside a Tor Backed Supply Chain Worm · Published 20/05/2026 13:12 · Modified 21/05/2026 16:46
• Mini Shai-Hulud Hits TanStack npm Packages · Published 21/05/2026 17:38 · Modified 21/05/2026 16:11
• Latest PyPi Compromise · Published 20/05/2026 00:26 · Modified 21/05/2026 00:36
• Copycat hits another npm package · Published 19/05/2026 00:26 · Modified 19/05/2026 17:59